Unrated severityNVD Advisory· Published Dec 31, 2002· Updated Apr 16, 2026

CVE-2002-2247

Description

The administrator/phpinfo.php script in Mambo Site Server 4.0.11 allows remote attackers to obtain sensitive information such as the full web root path via phpinfo.php, which calls the phpinfo function.

Affected products

Mambo (software)/Site Server
cpe:2.3:a:mambo:mambo_site_server:4.0.11:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/6376nvdExploitPatch
archives.neohapsis.com/archives/bugtraq/2002-12/0111.htmlnvd
exchange.xforce.ibmcloud.com/vulnerabilities/10853nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.004
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000